mirror of
https://github.com/immich-app/immich.git
synced 2026-03-01 10:08:42 +03:00
234 lines
6.9 KiB
TypeScript
234 lines
6.9 KiB
TypeScript
import { Injectable } from '@nestjs/common';
|
|
import { isAbsolute, join } from 'node:path';
|
|
import { SALT_ROUNDS } from 'src/constants';
|
|
import { MaintenanceAuthDto } from 'src/dtos/maintenance.dto';
|
|
import { UserAdminResponseDto, mapUserAdmin } from 'src/dtos/user.dto';
|
|
import { MaintenanceAction, SystemMetadataKey } from 'src/enum';
|
|
import { BaseService } from 'src/services/base.service';
|
|
import { schemaDiff } from 'src/sql-tools';
|
|
import { createMaintenanceLoginUrl, generateMaintenanceSecret } from 'src/utils/maintenance';
|
|
import { getExternalDomain } from 'src/utils/misc';
|
|
|
|
export type SchemaReport = {
|
|
migrations: MigrationStatus[];
|
|
drift: ReturnType<typeof schemaDiff>;
|
|
};
|
|
|
|
type MigrationStatus = {
|
|
name: string;
|
|
status: 'applied' | 'missing' | 'deleted';
|
|
};
|
|
|
|
@Injectable()
|
|
export class CliService extends BaseService {
|
|
async schemaReport(): Promise<SchemaReport> {
|
|
// eslint-disable-next-line unicorn/prefer-module
|
|
const allFiles = await this.storageRepository.readdir(join(__dirname, '../schema/migrations'));
|
|
const files = allFiles.filter((file) => file.endsWith('.js')).map((file) => file.slice(0, -3));
|
|
const rows = await this.databaseRepository.getMigrations();
|
|
const filesSet = new Set(files);
|
|
const rowsSet = new Set(rows.map((item) => item.name));
|
|
const combined = [...filesSet, ...rowsSet].toSorted();
|
|
|
|
const migrations: MigrationStatus[] = [];
|
|
|
|
for (const name of combined) {
|
|
if (filesSet.has(name) && rowsSet.has(name)) {
|
|
migrations.push({ name, status: 'applied' });
|
|
continue;
|
|
}
|
|
|
|
if (filesSet.has(name) && !rowsSet.has(name)) {
|
|
migrations.push({ name, status: 'missing' });
|
|
continue;
|
|
}
|
|
|
|
if (!filesSet.has(name) && rowsSet.has(name)) {
|
|
migrations.push({ name, status: 'deleted' });
|
|
continue;
|
|
}
|
|
}
|
|
|
|
const drift = await this.databaseRepository.getSchemaDrift();
|
|
|
|
return { migrations, drift };
|
|
}
|
|
|
|
async listUsers(): Promise<UserAdminResponseDto[]> {
|
|
const users = await this.userRepository.getList({ withDeleted: true });
|
|
return users.map((user) => mapUserAdmin(user));
|
|
}
|
|
|
|
async resetAdminPassword(ask: (admin: UserAdminResponseDto) => Promise<string | undefined>) {
|
|
const admin = await this.userRepository.getAdmin();
|
|
if (!admin) {
|
|
throw new Error('Admin account does not exist');
|
|
}
|
|
|
|
const providedPassword = await ask(mapUserAdmin(admin));
|
|
const password = providedPassword || this.cryptoRepository.randomBytesAsText(24);
|
|
const hashedPassword = await this.cryptoRepository.hashBcrypt(password, SALT_ROUNDS);
|
|
|
|
await this.userRepository.update(admin.id, { password: hashedPassword });
|
|
|
|
return { admin, password, provided: !!providedPassword };
|
|
}
|
|
|
|
async disablePasswordLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.passwordLogin.enabled = false;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async enablePasswordLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.passwordLogin.enabled = true;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async disableMaintenanceMode(): Promise<{ alreadyDisabled: boolean }> {
|
|
const currentState = await this.systemMetadataRepository
|
|
.get(SystemMetadataKey.MaintenanceMode)
|
|
.then((state) => state ?? { isMaintenanceMode: false as const });
|
|
|
|
if (!currentState.isMaintenanceMode) {
|
|
return {
|
|
alreadyDisabled: true,
|
|
};
|
|
}
|
|
|
|
const state = { isMaintenanceMode: false as const };
|
|
await this.systemMetadataRepository.set(SystemMetadataKey.MaintenanceMode, state);
|
|
await this.appRepository.sendOneShotAppRestart(state);
|
|
|
|
return {
|
|
alreadyDisabled: false,
|
|
};
|
|
}
|
|
|
|
async enableMaintenanceMode(): Promise<{ authUrl: string; alreadyEnabled: boolean }> {
|
|
const { server } = await this.getConfig({ withCache: true });
|
|
const baseUrl = getExternalDomain(server);
|
|
|
|
const payload: MaintenanceAuthDto = {
|
|
username: 'cli-admin',
|
|
};
|
|
|
|
const state = await this.systemMetadataRepository
|
|
.get(SystemMetadataKey.MaintenanceMode)
|
|
.then((state) => state ?? { isMaintenanceMode: false as const });
|
|
|
|
if (state.isMaintenanceMode) {
|
|
return {
|
|
authUrl: await createMaintenanceLoginUrl(baseUrl, payload, state.secret),
|
|
alreadyEnabled: true,
|
|
};
|
|
}
|
|
|
|
const secret = generateMaintenanceSecret();
|
|
|
|
await this.systemMetadataRepository.set(SystemMetadataKey.MaintenanceMode, {
|
|
isMaintenanceMode: true,
|
|
secret,
|
|
action: {
|
|
action: MaintenanceAction.Start,
|
|
},
|
|
});
|
|
|
|
await this.appRepository.sendOneShotAppRestart({
|
|
isMaintenanceMode: true,
|
|
});
|
|
|
|
return {
|
|
authUrl: await createMaintenanceLoginUrl(baseUrl, payload, secret),
|
|
alreadyEnabled: false,
|
|
};
|
|
}
|
|
|
|
async grantAdminAccess(email: string): Promise<void> {
|
|
const user = await this.userRepository.getByEmail(email);
|
|
if (!user) {
|
|
throw new Error('User does not exist');
|
|
}
|
|
|
|
await this.userRepository.update(user.id, { isAdmin: true });
|
|
}
|
|
|
|
async revokeAdminAccess(email: string): Promise<void> {
|
|
const user = await this.userRepository.getByEmail(email);
|
|
if (!user) {
|
|
throw new Error('User does not exist');
|
|
}
|
|
|
|
await this.userRepository.update(user.id, { isAdmin: false });
|
|
}
|
|
|
|
async disableOAuthLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.oauth.enabled = false;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async enableOAuthLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.oauth.enabled = true;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async getSampleFilePaths(): Promise<string[]> {
|
|
const [assets, people, users] = await Promise.all([
|
|
this.assetRepository.getFileSamples(),
|
|
this.personRepository.getFileSamples(),
|
|
this.userRepository.getFileSamples(),
|
|
]);
|
|
|
|
const paths = [];
|
|
|
|
for (const person of people) {
|
|
paths.push(person.thumbnailPath);
|
|
}
|
|
|
|
for (const user of users) {
|
|
paths.push(user.profileImagePath);
|
|
}
|
|
|
|
for (const asset of assets) {
|
|
paths.push(asset.path);
|
|
}
|
|
|
|
return paths.filter(Boolean) as string[];
|
|
}
|
|
|
|
async migrateFilePaths({
|
|
oldValue,
|
|
newValue,
|
|
confirm,
|
|
}: {
|
|
oldValue: string;
|
|
newValue: string;
|
|
confirm: (data: { sourceFolder: string; targetFolder: string }) => Promise<boolean>;
|
|
}): Promise<boolean> {
|
|
let sourceFolder = oldValue;
|
|
if (sourceFolder.startsWith('./')) {
|
|
sourceFolder = sourceFolder.slice(2);
|
|
}
|
|
|
|
const targetFolder = newValue;
|
|
if (!isAbsolute(targetFolder)) {
|
|
throw new Error('Target media location must be an absolute path');
|
|
}
|
|
|
|
if (!(await confirm({ sourceFolder, targetFolder }))) {
|
|
return false;
|
|
}
|
|
|
|
await this.databaseRepository.migrateFilePaths(sourceFolder, targetFolder);
|
|
|
|
return true;
|
|
}
|
|
|
|
cleanup() {
|
|
return this.databaseRepository.shutdown();
|
|
}
|
|
}
|